vicsanjinez / wazuh-config
Configurations to implement Wazuh
☆11Updated last year
Related projects ⓘ
Alternatives and complementary repositories for wazuh-config
- SIEM Cheat Sheet☆72Updated last year
- ☆33Updated last year
- ☆24Updated last year
- Wazuh integration TheHive☆33Updated last year
- An offline Phishing Email Analyzer. Enabling non-techies to analyze phishing emails automatically!☆54Updated last year
- This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR☆71Updated 2 years ago
- ☆31Updated 2 years ago
- A collection of various SIEM rules relating to malware family groups.☆62Updated 5 months ago
- This is the One Stop place where you can several Detection Rules which can help you to kick start your journey on SIEM, SOC work.☆36Updated 3 years ago
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆75Updated 11 months ago
- ThreatSeeker: Threat Hunting via Windows Event Logs☆114Updated last year
- Useful resources about phishing email analysis☆76Updated 2 years ago
- MISP Playbooks☆174Updated last month
- Playbooks for SOC Analysts☆144Updated last year
- Some Threat Hunting queries useful for blue teamers☆123Updated 2 years ago
- A collection of companies that disclose adversary TTPs after they have been breached☆241Updated 6 months ago
- Tools for simulating threats☆177Updated last year
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆158Updated last week
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆116Updated 4 months ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆24Updated last month
- Some of the tools we use during vCISO engagements☆14Updated 2 years ago
- ☆42Updated last year
- An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.☆168Updated 4 months ago
- CrowdStrike Falcon Queries For Advanced Threat Detection☆14Updated 2 years ago
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆204Updated last year
- ☆54Updated 3 years ago
- MISP to Sentinel integration☆60Updated this week
- Welcome to Project KillChain, a comprehensive GitHub repository for Red and Blue Teams. This repository houses tools, scripts, technique…☆97Updated 3 months ago
- Repository resource for threat hunter☆158Updated 6 years ago
- Some important DFIR Resources☆82Updated last year